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METHOD OF MODELING A DIGITAL COMMUNICATIONS NETWORK 
Field of the Invention 

This invention relates to the field of digital communications networks, and in particular to 
a method of modeling objects in such networks. The invention is applicable to IP 
5 networks, such as the Internet. 

Background Of The Invention 

The inherently unpredictable nature of IP networks coupled with the explosive demand 
for IP based services and the ever increasing e-commerce economy in which we live has 
highlighted the need for reliable, assured, quality IP Network and Services. For the 
1 0 service provider this means fully understanding their IP networks both at the network and 
service level. An important part of this understanding is the ability to know how specific' 
parts of the network are performing. An object of the invention is to meet this need. 

Summary of the Invention 

According to the present invention there is provided a domain/object model of a packet- 
15 switched digital communications network that contains devices, data collection, and 
services as separate entities, wherein said domain/object model provides explicit 
representation of key objects, and key service and network performance metrics. 

The packet switched network is typically an IP network. The model preferably includes 
the modeling of various types of Systems and Interfaces along with Virtual Associations 

20 (VA). Virtual Associations offer an ability to virtually "link" two points in an DP network, 
allow for performance measurements to be collected and analyzed for this virtual 
association. Virtual Associations give service providers logical views into their IP 
networks, instead of viewing the environment as a compilation of unrelated routers and 
devices. Virtual Associations take network and service assurance and performance 

25 management to the next level in an IP environment. The ability to have a logical 

"connection" oriented view within an inherently connectionless environment sheds light 
on what has been an unpredictable and unreliable networking environment. The Virtual 
Associations give service providers logical views into their IP networks, instead of 
viewing the environment as a compilation of unrelated routers and devices. 
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The model for IP objects may be integrated with the object models for management of 
other network technologies, including Frame Relay, ATM and TDM. This allows 
integrated analysis of performance across heterogeneous networks, for both network and 
service level objects. The architectural flexibility of the object model is important as the 
5 network and services change over time. This flexibility provides the ability to add new 
devices into the model as needed, and add new measurement metrics to objects as needed. 

The IP domain modeling provides an open system, able to be selective about the specific 
objects and information that are to be monitored. The model provides a basis for 
— enhaneed-reporting-on-IP -based-objeets r for-ne1work-and-seiviee-reporting, and forms the 

1 0 ^basis'for performance* reporting on^IP-VPNs. In the model, systems are modeled as 
Network Access Layer Systems (e.g. Repeater, Bridge, L2 switch); Network Layer 
Systems (L3 devices such as routers; e.g. Cisco, 3com, Bay routers); End-to-End System 
(servers, hosts, printers); and Application Layer Systems (FTP client/FTP server, SMTP 
client/SMTP server). Interfaces are physical or logical traffic carrying entities (e.g. 

15 interface ports). 

The invention is particularly suited for use with Orchestream Corporations Resolve™ 
network management software. 

In another aspect the invention provides a method of modeling a network to provide 
information pertaining to the operation of the network, comprising establishing virtual 
20 associations between at least two points on the network whereby performance 
measurements can be collected and analyzed for each virtual association. 

Brief Description of the Drawings 

The invention will now be described in more detail, by way of example only, with 
reference to the accompanying drawings, in which:- 

25 Figure 1 is a diagram of an IP network showing virtual associations; 

Figure 2 is a diagram of a web-hosting server; 

Figure 3 shows an end point analysis; 

Figure 4 shows an IP_VFN scenario; 

Figure 5 shows and example of a secure IP_VPN; 
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Figure 6 shows an example of a MPLS (LSP); and 
Figure 7 shows an OSS integration. 
Detailed Description o the Invention 

In order to understand the invention, it is important to understand the concept of virtual 
5 associations (Vas) implemented in the model. Figure 1 illustrates a network topology 
modeled using Virtual associations (VAs) in accordance with the principles of the 
invention. VAs provide a mechanism to model and assess performance between two 
associated entities in a connection-less network environment. They are uni-directional and 
can be configured by the end-user. 

10 The end-points of a VA are known as Virtual Association Termination Points (VATPs). A 
VATP is a virtual identifier for identifying each end-point of a Virtual- Association. A 
Virtual Identifier is typically the IP-address of the end-point being measured: a sole IP 
Address on an interface, an Interface's IP-address, a Transport Address (IP Address + 
port), or a System's IP-address. The end-points used to form VATPs are synced from 

1 5 external sources, e.g. a Resolve SNMP Data Manager or an NMS. 

The VAs are the IP-addresses of the end-point to be measured (e.g. port, interface, 
system.). VAs are configurable (through the Resolve Configurator. VAs may also be 
configured for mass-importation via CrossKeys Professional), allowing the user to acquire 
information on specific areas of the network, while having the ability to set performance 
20 thresholds to monitor service levels, and network trends. Virtual Associations are based 
on how service providers deploy their services. They may be configured within a Point- 
Of-Presence (POP) or between POPs. They form the basis of hot spotting, tying in or 
associating two management points to facilitate the performance analysis of IP-based 
services. 

25 VAs can be used to measure packet loss, latency, reachability, protocol distribution, as 
well as, bytes and packets per protocol to track daily, monthly, and detailed performance 
between two points in the network for network performance reporting. These parameters 
are then tied to configurable IP service thresholds, based on the customer's defined SLAs, 
for analysis of violation trends for service performance reporting on a daily and monthly 

30 basis. 
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Virtual Associations are appropriate for long and short term associations. Long-term 
associations could be for monitoring site-interconnections. Short-term associations could 
be for monitoring tunnels for VPN remote access. 

The network shown in Figure 1 has pairs of switches X linked through virtual 
5 associations. The VAs allow for performance measurements to be collected and analyzed 
for each virtual association. 

The Virtual Association concept is intrinsically linked to the IP domain model. The 
domain model that contains devices, data collection, and services as separate entities. 
These can be added or removed to model the service provider's network and service 
1 0 environment. The domain model provides explicit representation of key IP objects. This 
includes the modeling of various types of Systems and Interfaces along with theVirtual 
Associations (VA). 

The model for IP objects can be integrated with the object models for management of 
other network technologies, including Frame Relay, ATM and TDM. This allows 
1 5 integrated analysis of performance across heterogeneous networks, for both network and 
service level objects. The architected flexibility of the object model is important as the 
network and services change over time. This flexibility provides the ability to add new 
r~devices into the model as needed, and add new measurement metrics to objects as needed. 

The IP domain modeling provides an open system, able to be selective about the specific 
20 objects and information that are to be monitored. The model provides a basis for 

enhanced reporting on IP-based objects, for network and service reporting, and forms the 
basis for performance reporting on IP-VPNs. 

In the IP domain model systems are modeled as Network Access Layer Systems (e.g. 
Repeater, Bridge, L2 switch); Network Layer Systems (L3 devices such as routers; e.g. 
25 Cisco, 3com, Bay routers); End-to-End System (servers, hosts, printers); and Application 
Layer Systems (FTP client/FTP server, SMTP client/SMTP server). 

Interfaces are physical or logical traffic carrying entities (e.g. interface ports) 

The VAs then provide a mechanism to model and assess performance between two 
associated entities in a connection-less network environment. They are uni-directional and 
30 can be configured by the end-user. The end-points of a VA are known as Virtual 
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Association Termination Points (VATPs). These are the IP-addresses of the end-point to 
be measured (e.g. port, interface, system.). VAs are configurable , allowing the user to 
acquire information on specific areas of the network, while having the ability to set 
performance thresholds to monitor service levels, and network trends. Virtual 
5 Associations are based on how service providers deploy their services. They may be 
configured within a Point-Of-Presence (POP) or between POPs. They form the basis of 
hot spotting, tying in or associating two management points to facilitate the performance 
analysis of IP-based services. 

VAs can be used to measure packet loss, latency, reachability, protocol distribution, as 
10 well as, bytes and packets per protocol to track daily, monthly, and detailed performance 
between two points in the network for network performance reporting. These parameters 
are then tied to configurable IP service thresholds, based on the customer's defined SLAs, 
for analysis of violation trends for service perfoimance reporting on a daily and monthly 
basis. 

15 Virtual Associations are appropriate for long and short term associations. Long-term 

associations could be for monitoring site-interconnections. Short-term associations could 
be for monitoring tunnels for VPN remote access. 

Available reports are useful for Account Managers, Service Representatives as well as 
Engineering (Network Planning and Operations). 

20 Sample Scenario: Dedicated Web-Hosting/Application/Server (See Figure 2) 

As service providers deploy web hosting services for their customers, the quality of 
experience that the end user (web surfer, customer) experience in using and accessing the 
web site becomes of critical importance. Enterprises that outsource this important 
business tool demand service assurance in the form of meaningful SLAs from their 
25 providers. 

A user wishes to assess network and service perfoimance for a web-hosting application 
that is running on a dedicated web-server or host at a Point of Presence (POP). By 
configuring a VA, the service provider can determine performance information of the VA 
that models the web hosting service. By focusing on a slice of the overall network, the 
30 VA, the service provider can monitor network performance and assess specific network 



-5- 



WO 01/91369 



PCT/CA01/00725 



quality indices. At the service level, the service provider can look at service thresholds, 
violations, trends and other indicators of quality of service. This can be achieved by 
configuration of a Virtual Association, setting service performance thresholds on the VA, 
and analyzing the network and service performance for the given VA. 

5 From Virtual Association analysis, the user can assess performance of the end-points of 
the configured VA -look at the end-point that has the web-server running on it, and 
compare that interfaced performance to other interfaces in the network. Each interface can 
then be compared in aggregate to the performance of systems (that would have several 
— other interfaces on them)r — ■ 

1 0 Through the Resolve Configurator GUI, a user configures a VA from the POP to the web- 
hosting server (see Appendix for details on creating a VA from the GUI). The user sets 
appropriate threshold levels for VAs 1 reporting, and commits (saves) the VA(s). 
Thresholds are for Average Round-Trip-Time (ie. service latency) and Reachability. 

The user tracks network and service performance by looking at data on various reports as 
1 5 follows: From the Network Overview Report showing overall performance of IP, as well 
as, FR and ATM, the user hones in on latency for the configured VAs by drilling-down to 
the Key Performance Indicator Report to assess trend of the VA. 

Also from the Network Overview, the user decides to drills-down to the Violation Trend 
Report that lists all network performance violations based on user-set thresholds for 
20 Systems, Interfaces, and VAs. From this, the user gets an idea of the VAs daily and 
monthly performance for Reachability, Availability, Outage Counts, Outage Seconds, 
Average Round Trip Transfer Time (Average RTT or average latency) . 

Additionally, from the Network Overview, the user wishes to find out a detailed list of all 
violations including those for the configured VA(s) by looking at the aggregate Violation 
25 List Report . The user also wishes to find out details of service as well as network 
violations specific to the configured VA. For network-level violations, the user drills 
down to the Components to Watch. To assess service-level violations, the user drills 
down to detailed views of, Services to Watch , and IP service Thresholds. 

The user now wishes to see daily performance of the configured VA(s) to identify details 
30 on usage, track traffic patterns (protocol distributions), determine delay, loss and 
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reachability patterns for the configured VA(s), and thus the web-hosting service. From 
either of the network and service views above, theuser drills-down to the IP VA Daily 
Performance Reports as well as IP VA Detailed Performance Reports that show charts on 
Loss, Latency, Reachability, and Bytes per Protocol, and Packets Per Protocol . 

5 From the above analyses, the user is able to track the network and service performance of 
the VA. He is able to see and monitor network performance of the web-hosting site and 
assess specific network quality indices through the configured VA. He is able to see and 
monitor the service thresholds, violations, trends and indicators of quality of service for 
the web-hosting site through the configured VA. He is able to compare the performance 
10 of the server site to that of other areas in the network as follows. 

From the analysis of VAs, the user now wishes to assess performance of the end-points of 
the configured VA -look at the end-point that has the web-server running on it, and 
compare that interface's performance to other interfaces in the network. In turn, the user 
wishes to then compare the performance of these interfaces, in aggregate, to the 
15 performance of systems (which may have several interfaces on them). To do this, from the 
IP VA Daily Performance, the user drills across to the IP Interfaces Daily Performance 
Reports , and to the IP Systems Performance Reports. 

From Virtual Association analysis, the user is able to then assess performance of the end- 
points of the configured VA, look at the end-point that has the web-server running on it, 

20 and compare that interface's performance to other interfaces in the network (see Figure 3). 
The user can gain insight on the performance of the VAs end-point interface to those of 
other interfaces in the POP (POP1). Furthermore, the user can see network and service 
level performance of these interfaces to other systems 1 interfaces in the network (POP2 & 
POP3) and look at network and service performance of the systems as well throughout 

25 the entire network. 

In the above analysis, the user can go directly to detailed reports from earlier steps. The 
above detailed scenarios are meant to capture a foil-breadth and in-depth analysis. In 
addition, he user can create other types of reports tailored to his/her specific needs, and 
attach them as drill-throughs to reports identified in any of the scenarios above. 
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Sample Scenario: CrossKevs Resolve Virtual Associations in the context of IP VPNs 

Below (see Figure 4) is a description of how Virtual Associations can improve the 
performance of an IP based VPN service, which provides a set of IP Services including 
Internet Access, Dial Up connectivity and site to site IP data transmission. 

5 Virtual Associations can be configured by the user so that tc hot spots" or segments of the 
IP VPN service are modeled as VAs. The multiple VAs that comprise the service can 
then be reported on individually (per VA), collectively (as a whole IP VPN service) 
and/or by interface and system of which each VA is derived from. The end result is a clear 
picture of the IP VPN service and it's performance. 

10 From the Figure 4, it will be seen that the IP VPN's performance as a whole entity (as 
defined by the VAs) and each segment of the IP VPN - Remote dial access performance, 
dedicated internet access points, site-interconnect performance are all measured, 
monitored, and reported on. 

VA 1, which is configured to map onto the dial service can include the Remote Access 
1 5 Server (RAS) as one VATP and the Edge VPN Router (POP 1) as the other VATP. The 
first VATP, is the fixed ingress (network-facing) port of the Remote Access Server that 
interfaces onto the service provider's IP network. The second VATP is an interface on 
the service provider's router POP 1 . From this VA, performance of this dial-in segment 
can be measured and monitored. 

20 VA 2, which is configured from the router (POP 2) as one VATP to the edge router on the 
customer's main site (CPE 1) which acts as the VA 2's VATP. Monitoring this VA 
would give the service provider performance information on the primary IP VPN link into 
the service provider's IP network cloud from the enterprise's main or critical site. 

VA 3, which is configured from the customer's router (CPE 2) to the service provider's 
25 nearest POP (POP 3) models the dedicated IP VPN access offered by the service provider 
to that end customer. This VA would collect and show performance reporting for this 
segment of the IP VPN service. 

VA 4, VA 5 and VA 6 are each configured to include 2 major POPs within each VA. 
This is done to monitor the backbone performance of the IP VPN. 
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VA 7 is monitoring the performance of a "permanent" VPN or site interconnect, created 
between a router/server at the corporate head quarters (main IP VPN site CPE 1) and the 
router/server at the branch office (CPE 3). 

All together, these VAs can model an IP VPN service and thus enable the service provider 
to gain insight as to the performance of this IP VPN service as a holistic service offering, 
and or by segment, customer or device included within the configured IP VPN service. 
This flexibility and ability to model the service in different views (network, service, per 
customer) is unique to CrossKeys Resolve. The power and value of Virtual Association 
modeling is evident in this scenario. 

Sample Scenario: Monitoring the Performance of an Enterprise's secure (encrypted) IP 
VPN connection (Figure 5) 

Each corporate user's PC client is security enabled with encryption software 
residing on the PC. 

The corporate user dials into a local public POP and is authenticated on that RAS 
15 to access the Internet. 

The user is then authenticated at their corporate site (fixed IP Address) for the 
secure Internet tunnel to be established. 

By configuring and using VAs in this scenario, the same benefits apply as in the IP VPN 
dial in example in the section above. Creating and monitoring the performance of VAs: 
20 between customer sites, between a customer site and a Network Access Point (NAP), 
between a POP and the customer site, and also between POPs gives the service provider 
the ability to measure, monitor and report on performance for a secure IP VPN service. 

Sample Scenario: VAs Used to Represent MPLS Label Switched Paths fFigure 6) 

The system gives services providers the ability to measure and analyze the performance of 
25 new and emerging networking standards like MPLS and DiffServ. 

With MPLS, where label switched paths exist by having been created autonomously in the 
network, and/or having been created by external management (creation and status 
reporting through traps/notification), VAs can be used to map label switched paths to 
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monitor overall performance and assess the effectiveness of the MPLS-engineered 
network . 

Sample Scenario: Intelligent Discovery by Application in or Adjacent to Resolve (Figure 
21 

5 Network usage and traffic data is used to identify network flows. Virtual Associations 
may be used in the following manner to assess network usage and traffic data used to 
identify network flows. 

An Adjunct application (such as a Flow Analyzer in the above diagram) identifies flows 
and flow data between points by applying analysis techniques to Resolve's performance 
10 data. 

The traffic flow-patterns between 2 network points are modeled as VAs within the 
network management system. 

The system acquires and summarizes flow data. 

The created VAs can then be related to overall network and service performance. 

15 The identified scenario would be useful for network planning and engineering, as well as, 
customer account management. Some examples of how this application could be applied 
are: 

• network prediction - flow prediction allows for effective 
engineering of the network and thus enhanced quality of service 

20 • capacity forecasting - allows for "what-if 1 scenarios to see how 

new IP-based services effect, or will effect, the service provider 
network 

• know when to build out network - allows service providers to 
predict when they require additional networking infrastructure to 

25 account for new, yet-to-be deployed services, or to meet growing 

demands on existing services 

• optimizing network design - allows for optimizing of already- 
deployed network resources 
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For the service provider, virtual Associations are a means of gaining control over their IP 
networks. They allow for the optimizing of infrastructure investments, streamlining of 
OSS processes, and knowing what is happening both at the network and service level in 
an aggregated manner. Using the system's reporting capabilities, users are able to develop 
5 their own custom reports as well. In addition, these reports may be attached as drill- 
throughs to existing reports. 

If the association between two IP interfaces is not defined in the sources NMS 5 it must be 
configured in Resolve before Resolve can monitor the interface to interface performance. 
Because a virtual association represents only one direction of traffic, associating two IP 
10 interfaces creates two virtual associations. 

Flow of Events 

The following steps describe how to set up virtual associations through the Resolve 
Configurator: 

1 . The User, opens a new Virtual Association detail window. 

15 The User, opens a Component lookup to search for the first IP interface. 

The User, enters search filter criteria and clicks "Search". (The filter criteria are 
system name, interface name and source NMS.) 

The system lists the interfaces that match the search criteria. 

The User, selects the components that are used to provide this service and clicks 
20 "OK". 

2. The system adds the selected components to the Virtual Association detail window. 

The User, repeats steps 2 to 6 for the second IP interface. 
The system displays the default VA names based on the interface names. 
The User, types in new VA names (OPTIONAL). 
25 The User, saves the VA definitions. 

The system saves the VA definitions to the database (Resolve Service 
Management Information Base -SMIB). 

Pre-Conditions 

30 The targets (ie. IP port, interface, system, addresses) of the VA's VATPs must exist in the 
Resolve database. These are synced (ie. inhaled) from external sources, e.g. a Resolve 
SNMP Data Manager or an NMS. 

Post-Conditions 

The New Virtual Association is created in the database 
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Some possible applications of the system described are as follows: 
Monitoring the Performance of ISP Peering Points Interconnection, 

Choose two routers in each peering points, one as source and one as destination. 

• Configure the Routers to perform the ICMP Echo (Ping) between the 
two sites. 

• Create a Virtual Association (VA) between two routers in each peering 
point (NAP) using the IP Addresses. 

• Resolve collect the data through PVM and summarize it. 

• Monitor the performance of the VA by generating Reports at the 
Resolve Ni level : 

o Availability 

o reachability 

o PLR 

Monitoring the Performance of an Enterprise Network (Star Topology). 

• Choose a router in the Headquarter and one in each branch office. 

• Configure the Routers to perform the ICMP Echo (Ping) between 
either the branch office to headquarter or vice versa. 

• Create a Virtual Association (VA) between each two routers in 
each peering point (NAP) using their IP Addresses. 

• Resolve collect the data through PVM and summarize it. 

• Monitor the performance of the VA by generating Reports at the 
Resolve Ni level : 

o Availability 

o reachability 

o PLR 

Monitoring the Performance of Internet Connection. 
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• By creating and monitoring the performance of VA : 
o between customer sites 
o between a customer site and a NAP 
o between a POP and a customer site 
o between POPs used by the customer. 
Monitoring the Performance of the backbone link. 

• By creating and monitoring the performance of VA : between two routers 
at each end of the link 

Monitoring the Performance of a Permanent VPN. 

• By creating and monitoring the performance of a service with Virtual 
Accociations : created between a router/server at the headquarter of the P- 
VPN and a router/server at each branch office. 

It will be appreciated from the above-described examples that the use of virtual 
associations in a network management environment provides an efficient way to monitor 
the performance of segments of a network. 
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Claims: 

1 . A domain/object model of a packet-switched digital communications network that 
contains devices, data collection, and services as separate entities, wherein said 
domain/object model provides explicit representation of key objects, and key service and 

5 network performance metrics. 

2. A domain/object model as claimed in claim 1, wherein a plurality of points on a 
network a logically linked through virtual associations. 

3. A domain/object model as claimed in claim 2, wherein said virtual associations 
are identified by identifiers associated with endpoints of the association. 

10 4. A domain/object model as claimed in claim 3, wherein said network is an IP 
network. 

5. A domain/object model as claimed in claim 4, wherein said identifiers are the IP 
addresses of the endpoints. 

6. A method of modeling a network to provide information pertaining to the 

1 5 operation of the network, comprising establishing virtual associations between at least 
two points on the network whereby performance measurements can be collected and 
analyzed for each virtual association. 

7. A method as claimed in claim 6, wherein said virtual associations are identified by 
identifiers associated with the endpoints thereof. 

20 8. A method as claimed in claim 6, wherein said network is an IP network and said 
identifiers comprises the IP addresses of the endpoints associated with the virtual 
connections. 

9. A method as claimed in claim 6, wherein said virtual associations are used 
measure parameters for tracking daily, monthly, and detailed performance between two 

25 points in the network for network performance reporting. 

10. A method as claimed in claim 9, wherein said virtual associations are used to 
measure packet loss, latency, reachability, protocol distribution, bytes and packets per 
protocol. 
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11. A method as claimed in claim 9, wherein said parameters are then tied to 
configurable IP service thresholds, based on the customer's defined service level 
agreements for analysis of violation trends for service performance reporting on a periodic 
basis. 

5 12. A method as claimed in claim 6, wherein said virtual associations are associated 
with specific network services to permit the monitoring of said specific services. 

13. A method as claimed in claim 7, wherein one said endpoint is a local server and 
another said endpoint is a remote server. ...... 

14. A method as claimed in claim 6, wherein said virtual associations are used to 
1 0 monitor virtual private network tunnels. 
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